Notícias de Novembro

30-11-2020

5 Benefits of Upgrading Your Home Network Security - The Future of Things

16-31 October 2020 Cyber Attacks Timeline - Hackmageddon

28 Million Licensed Texan Drivers Hit by a Data Breach - TDH

84% of global decision makers accelerating digital transformation plans - Help Net Security

Baltimore County schools still closed following cyber attack - Greenwich Time

Beware new SA Post Office customs scam - My Broadband

Bug Bounties: Why These 10 Vulnerabilities Matter the Most - Dice Insights

Canon confirms ransomware attack in August exposed employees' personal data - Computing UK

Company Director Disqualified After Nuisance Calls - InfoSecurity

Consumption of public cloud is way ahead of the ability to secure it - ZD Net

Conti Gang Hits IoT Chipmaker Advantech with $14M Ransom Demand - ThreatPost

Credit card skimmer fills fake PayPal forms with stolen order info - Bleeping Computer

Delaware County Pays $500,000 Ransom After Outages - InfoSecurity

Fired CISA Director Refutes Election Fraud Allegations - Data Breach Today

Home Affairs wants to expand telco security reform notification requirements - ZD Net

How do I select a pentesting solution for my business? - Help Net Security

MacOS Users Targeted By OceanLotus Backdoor - ThreatPost

MasterChef Producer Hit by Double Extortion Ransomware - InfoSecurity

Media Production Giant Banijay Hit by Ransomware - Security Week

Microsoft ‘most imitated’ brand by cyber hackers - ARN from IDG

New Zealand Privacy Act: Updated data breach legislation comes into effect on December 1 - The Daily Swig

New wave of affordable silicon leading to greater IoT project success - Help Net Security

NSW driver's licence data breach victims still in the dark after three months - IT News

Pandemic thinking: What if there were a vaccine for OT ransomware? - Help Net Security

Pay2Key Ransomware Joins the Threat Landscape - Security Boulevard

Ransomware Attack on Baltimore County Schools - InfoSecurity

Remote work readiness gives Singapore firms cybersecurity anxiety - ZD Net

Researchers Demonstrate Flaws In Tesla X Model By Hacking And Stealing It - E Hacking News

Review: The Perfect Weapon - Help Net Security

Ryuk Ransomware Attack Could Cost French IT Services Firm Nearly $60M - MSSP Alert

Sophos Suffers Data Exposure Incident - Web Pro News

The Password Is Slowly Becoming Extinct, but It’s Not Obsolete Yet - SHRM

The US Is Number One for Data Theft - PC Magazine

This new cyberattack can dupe DNA scientists into creating dangerous viruses and toxins - ZD Net

Top 10 Cybersecurity Tips for Small Businesses - Unite AI

Vermont hospitals still recovering from October ransomware attack - Bleeping Computer

29-11-2020

Allianz: Companies lose money from cyber attacks caused by human error - Back End News

Authorities disrupt massive stolen credit card trading scam on dark web - HackRead

Better Business Bureau warns zoom users of new phishing scam - Whec News

Businesses that tend to proactively disclose security breaches tend to suffer less financial damage: Report - The Hindu Business Line

Can You Trust LinkedIn With Your Personal Data? - Make Use Of

Chip maker Advantech hit by Conti ransomware gang - Security Affairs

Manchester United Risk A £15million Fine Over Ransom Demand - Euro Weekly

Microsoft warns Ireland is a top target for ransomware attacks - Business Post

Operators behind Dark Caracal are still alive and operational - Security Affairs

Pennsylvania county pays 500K ransom to DoppelPaymer ransomware - Bleeping Computer

Ransomware attack on online classes forces Baltimore public schools to close on Monday and Tuesday with 115,000 pupils told to stay home - Daily Mail Online UK

Things You Need to Watch Out for When Shopping Online - Albawaba News

Unknown hackers break into database of fertility clinics - Bio Edge

UOG: Ransom-for-data hack thwarted, report made to FBI - The Gam Daily Post

28-11-2020

2021 Healthcare Cybersecurity Priorities: Experts Weigh In - Threatpost

According to Google's Data, over 2 Million phishing websites emerged in 2020 - Digital Information World

Canon admits to having suffered a computer attack that exposed the data of thousands of people - Birmingham Alive

City Continues Recovery After Ransomware Attack - Country94

Employees are often the weakest link in security chain - Gadgets Now

Hackers Found Using AWS and Oracle For Stealing Office 365 Credentials - Tech Dator

Hacker selling CEO, CFO email accounts for as less as Rs 7,400 - Daiji World

IIoT chip maker Advantech hit by ransomware, $12.5 million ransom - Bleeping Computer

Intrusion Analysis 101 - Security Boulevard

Notorious Ransomware Gang Hits Producers Of Big Brother, Master Chef And The Voice - Forbes

Office 365 phishing campaign leverages Oracle and Amazon cloud services - Security Affairs

PlayStation 5 giveaways: Real deal, phishing or data scam? - The Star

27-11-2020

A hacker is selling access to the email accounts of hundreds of C-level executives - ZD Net

Attacks are rising in all vectors and types - Help Net Security

Beware! An Email can cause Data Breach - Analytics Insights

Black Friday 2020: 70% off ethical hacking, security courses, more - Bleeping Computer

CBS Last.fm fixes admin password leakage via Symfony profiler - Bleeping Computer

CBS Last.fm fixes admin password leakage via Symfony profiler - Bleeping Computer

Cyber insurance claims on the rise - Help Net Security

Cybersecurity firm Sophos hit by data breach, says 'small subset' of customers affected - CIO Economics Time

Drupal issues emergency fix for critical bug with known exploits - Bleeping Computer

Encontrada grave falha no Windows 7; Microsoft não deve corrigir - TecMundo

Golpe na Black Friday promete cafeteira grátis, mas só rouba dados da vítima - Olhar Digital

Hackers atacam o TRF-1 e site da Justiça Federal em Mato Grosso fica fora do ar. - RD News

Leader of biggest online sextortion ring ‘Nth Room’ jailed for 40 years - HackRead

MasterChef, Big Brother producer hit by DoppelPaymer ransomware - Bleeping Computer

NCSC Helping Man United Recover from Cyber-Attack - InfoSecurity

New Code to Force Tech Giants to Provide Greater Data Transparency and Choice - InfoSecurity

Networking equipment vendor Belden discloses data breach - ZD Net

NHS Error Exposes Data on Hundreds of Patients and Staff - InfoSecurity

Office 365 phishing abuses Oracle and Amazon cloud services - Bleeping Computer

One in Seven BlackFriday Emails Are Malicious - InfoSecurity

Phishing lures employees with fake 'back to work' internal memos - Bleeping Computer

Sob suspeita de ataque hacker, TRF-1 blinda sistema eletrônico - CNN

Suspected North Korean hackers target coronavirus vaccine maker AstraZeneca - Washington Examiner

The US Army is researching ‘telepathic’ brain signal communication tech for soldiers - ZD Net

Top digital security worries when it comes to remote employees - Help Net Security

TRF-1 sofre ataque hacker e site está fora do ar nesta sexta-feira - Consultor Juridico

26-11-2020

APAC plagued by APT, ransomware attacks - Computer Weekly

APRA flags tougher stance to get boards to take security seriously - Brisbane Time

Authenticate and Survive – Why Current Options Are Better than Ever - InfoSecurity

Automation to shape cybersecurity activities in 2021 - Help Net Security

Beware of WhatsApp OTP scam: Here's how to safeguard yourself from online fraud - Deccan Herald

Canon publicly confirms August ransomware attack, data theft - Bleeping Computer

CIOs and CTOs name cyber challenges for 2021 - Profession Security Magazine Online

Cyber Police Claim Double Win: Arrests In 50,000-Victim Hacks, $48 Million In Credit Card Theft Prevented - Forbes

Dados de 16 milhões de brasileiros são expostos em vazamento do Ministério da Saúde - Olhar Digital

Data breach by NHS Highland reveals personal details of hundreds of diabetes patients - The Inverness Courier

DDoS Attacks Against Online Retailers Increase Four-Fold During Pandemic - InfoSecurity

Email Attacks on the Retail Industry: ‘Tis the Season - InfoSecurity

Facebook fined in South Korea for sharing user data without consent - ZD Net

GoDaddy employees tricked in attack against cryptocurrency firms - HackRead

Home Depot Pays $17.5 Mill For Data Breach - The Bay Net

How consumers feel about retail data breaches - Help Net Security

If you're still using Windows 7, you need to install this important, free 0-day patch - Beta News

Kaspersky discovers phishing pages targeting PUBG accounts - Back End News

Network hacking and ransomware fueling global cybercrime surge - The Daily Swig

New Egregor Ransomware Steps into Maze Group’s Shoes - InfoSecurity

Second Swiss firm allegedly sold encrypted spying devices - swissinfo

Sopra Steria records heavy financial loss after Ryuk ransomware attack - HackRead

Sophos alerts customers of info exposure after security breach - Bleeping Computer

Sophos notifies customers of data exposure after database misconfiguration - ZD Net

Sopra Steria: Ryuk Attack May Cost Us $60m - InfoSecurity

UK Spies Urge Firms to Patch MobileIron Bug ASAP - InfoSecurity

Vazamento de senha expõe dados de casos suspeitos e confirmados de Covid-19 - Metropoles

25-11-2020

Baltimore County Public Schools hit by ransomware attack - Bleeping Computer

Belden networking giant's company data stolen in cyberattack - Bleeping Computer

Critical MobileIron RCE Flaw Under Active Attack - ThreatPost

Danish news agency Ritzau refuses to pay after ransomware attack - Bleeping Computer

Home Depot Settles with US States Over 2014 Data Breach - InfoSecurity

Is your organization prepared for PCI DSS 4.0? - Help Net Security

Laser-Based Hacking from Afar Goes Beyond Amazon Alexa - ThreatPost

Major BEC Phishing Ring Cracked Open with 3 Arrests - ThreatPost

Mastercard expands digital ID trial with Deakin and Australia Post - ZD Net

New malware fraudulently subscribes victims to premium phone services - HackRead

Ransomware: This new variant could be the next big malware threat to your business - ZD Net

Remote workforce, web portal, and DevSecOps: Three focus areas for cybersecurity - Security Boulevard

Security researcher accidentally discovers Windows 7 and Windows Server 2008 zero-day - ZD Net

Sopra Steria expects €50 million loss after Ryuk ransomware attack - Bleeping Computer

TMT BEC scammers arrested after compromising 50,000 companies - Bleeping Computer

Using drones to improve 5G network security - Help Net Security

24-11-2020

2FA bypass discovered in web hosting software cPanel - ZD Net

Apple's global security head indicted for bribery charges - ZD Net

Baidu's Android apps caught collecting sensitive user details - ZD Net

Blackrota Golang Backdoor Packs Heavy Obfuscation Punch - ThreatPost

Can Cyber Hygiene Lead to a Cyber Secure Attitude? - InfoSecurity

Cloud Compliance Doesn’t Equal Security - Security Boulevard

Complex cyber attacks target online retailers - Help Net Security

Credential stuffing attack targeted 300K+ Spotify users - Security Affairs

Crooks social-engineered GoDaddy staff to take over crypto-biz domains - Security Affairs

Cyber-attacks Reported on Three US Healthcare Providers - InfoSecurity

Cybercriminals are leveraging AI for malicious use - Security Brief

Hacker leaks the user data of event management app Peatix - ZD Net

How the pandemic has accelerated existing risk trends - Help Net Security

IT and data management challenges for 2021 - Help Net Security

‘Minecraft Mods’ Attack More Than 1 Million Android Devices - ThreatPost

New WAPDropper malware stealthily subscribes you to premium services - Bleeping Computer

Post-Breach, Peatix Data Reportedly Found on Instagram, Telegram - ThreatPost

Ransomware Increase Highlights Need for Better IT, OT Security - Security Boulevard

Researchers bring deep learning to IoT devices - Help Net Security

Smart Doorbells Are Wide Open to Security Flaws - InfoSecurity

Spotify launches ‘rolling reset’ on customer accounts, passwords linked to data leak - ZD Net

Stantinko's Linux malware now poses as an Apache web server - ZD Net

Tesla Hacked and Stolen Again Using Key Fob - ThreatPost

TikTok Patches Bugs Enabling One-Click Account Takeover - InfoSecurity

XDR: Unifying incident detection, response and remediation - Help Net Security

Warning: Banned Baidu Apps Exposed ‘Sensitive’ Data On Up To 1.4 Billion Android Phones - Forbes

23-11-2020

Booting a PC from vinyl for a warmer, Richer OS - Hack a Day

Companies rely on crowdsourced security to boost security efforts - Help Net Security

Covid-19 attacks on education accelerate cyber security work - UK Authority

Drupal-based sites open to attack via double extension files (CVE-2020-13671) - Help Net Security

Even the world’s freest countries aren’t safe from internet censorship - Help Net Security

Executives to invest more in cyber security capabilities in 2021 - Consutancy UK

FBI issued an alert on Ragnar Locker ransomware activity - Security Affairs

Four easy steps for organizations to hand over data control - Help Net Security

GoDaddy staff fall prey to social engineering scam in cryptocurrency exchange attack wave - ZD Net

Initial Access with Evil Calendar Files and GoPhish - Cyber Arms

Joe Biden Campaign Subdomain Down After Hacktivist Defacement - ThreatPost

Massive threat campaign strikes open-source repos, Sonatype spots new CursedGrabber malware - Security Affairs

Monash University and The Alfred to develop AI-based superbug detection system - ZD Net

MPs Bombarded by Nearly Three Million Monthly Email Attacks - InfoSecurity

New Study Says Cyber Security Technology Isn’t as Effective As It Should Be - Security Boulevard

OAIC has fielded zero complaints and received no reported COVIDSafe breaches - ZD Net

Organizations plan to use AI and ML to tackle unknown attacks faster - Help Net Security

QakBot operators abandon ProLock for Egregor ransomware - Help Net Security

Ransomware forces E-Land South Korean retail giant to close stores - Bleeping Computer

Ransomware Suspected in Man United Attack - InfoSecurity

Spotify Users Hit with Rash of Account Takeovers - ThreatPost

Tesla Model X key fobs could be hacked to steal cars, fix released - Bleeping Computer

The smart video doorbells letting hackers into your home - Wich?

VMware discloses critical zero-day vulnerability in Workspace One - Bleeping Computer

Voice phishing attacks on the rise, remote workers vulnerable - Security Brief

What is the future of working professional education? - Help Net Security

Why Replace Traditional Web Application Firewall (WAF) With New Age WAF? - The Hacker News

22-11-2020

Android's biggest problem is far worse than we ever imagined, new research proves - Express CO UK

Australian online data breach may affect thousands of NZers - RNZ

Attackers Dupe GoDaddy Staff Into Helping Them Take Down Cryptocurrency Services - Gizmodo

Beware these Black Friday scams - My Broad Band

British Financial Watchdog Sounds Warning on Phony Blockchain.com Website - Inside Bitcoins

Cyber Crime police help retrieve money fraudulently transferred from bank account in Chennai - The Indu

Doom running on the Nintendo Game & Watch - Hack a Day

Female British athletes hacked as nude pictures and videos are leaked on same evening as Man Utd cyber attack - The Sun

Hacked Crypto Exchange KuCoin Resumes Deposit, Withdrawal Services for All Tokens - Nasdaq

Hacker posts exploits for over 49,000 vulnerable Fortinet VPNs - Bleeping Computer

Hands on with Windows Terminal 1.5's upcoming features - Bleeping Computer

How to boost your Windows 10 experience with PowerToys - Bleeping Computer

How to identify a Fake Website on the World Wide Web? - Tech Notification

Living with COVID-19 creates a privacy dilemma for us all - ZD Net

Malicious Actors Are Using These Free Google Services in Their Phishing Campaigns - Digital Information World

New Malware Named ModPipe Is Targeting Hospitality Sector - SocialNews XYZ

Retail giant E-Land closes nearly half of stores due to ransomware attack - Biz & Tech

Wiltshire Police warn of online scams this Christmas - Wiltshire Times

21-11-2020

Botnets have been silently mass-scanning the internet for unsecured ENV files - ZD Net

Canadian Centre for Cyber Security warns infrastructure at risk from cyber attacks - MSN News

Cybersecurity threats hit home - The Oklahoman

Genshin Impact Developer Hits Leakers With Lawsuit - Game Rant

GoDaddy Employees Used in Attacks on Multiple Cryptocurrency Services - Krebson Security

Joe Biden's 'Vote Joe' website defaced by Turkish Hackers - Bleeping Computer

Malware service operators arrested; offered antivirus bypassing tools - HackRead

Manchester United hit by cyber attack but say fan data safe - BBC Sport

Hackers post athletes’ naked photos online - The Times

Personal data of 13 million online users leaked in data breach - The Thaigher

The Manchester United football club has been hit by a cyber attack on their systems, it is not aware of a breach of personal data for his fans - Security Affairs

TrickBot turns 100: Latest malware released with new features - Bleeping Computer

UK reveals new National Cyber Force to improve offensive cyber capabilities - Security Affairs

20-11-2020

56% of organizations faced a ransomware attack, many paid the ransom - Help Net Security

A flaw in Facebook Messenger could have allowed spying on users - Security Affairs

Artificial intelligence could be used to hack connected cars, drones warn security experts - ZD Net

Attacks on biotech and pharmaceutical industry escalate - Help Net Security

Consumer behaviors and cyber risks of holiday shopping in 2020 - Help Net Security

Countering Threat Data Overload: The Importance of Curation - InfoSecurity

Critical Webex Bugs Let ‘Ghost’ Users Spy on Meetings - Hot For Security

Cybersecurity doorways left ajar in the race to remote work - Security Magazine

Data Breach at Iowa Hospital - InfoSecurity

Data Breach of Online Kids’ Game Exposed Personal Data of 46 Million Parents and Children - CPO Magazine

Drupal sites vulnerable to double-extension attacks - ZD Net

Facebook Messenger Bug Lets Hackers Listen to You Before You Pick Up the Call - The Hacker News

Facebook Paid Out $11.7 Million in Bug Bounties Since 2011 - Security Week

Financial services lead when it comes to fixing open source flaws - Help Net Security

Green Beret Passed Secrets to Russia - InfoSecurity

Hacker Closing Out Prison Sentence in Chicago Halfway House - Security Week

If Michael Jordan is zero trust, then identity governance is Scottie Pippen — Why cybersecurity is a team sport - Security Magazine

If your password is 123456, it's time for an update - Security Magazine

Maintaining Governance and Security in Multi-Tool Environments - Security Boulevard

Mercy Iowa City Discloses Highly Sensitive Data Breach Impacting Over 60,000 Iowans - Hot For Security

Mitsubishi Electric Corp. was hit by a new cyberattack - Security Affairs

Pray.com exposed data of millions after database mess up - HackRead

Protecting data in the age of digital health - Hospital And Healthcare

QakBot Big Game Hunting continues: the operators drop ProLock ransomware for Egregor - Security Affairs

QBot partners with Egregor ransomware in bot-fueled attacks - Bleeping Computer

Ransomware Attack Takes Down Massive Food-Supply Chain Providing Distribution of Temperature-Sensitive COVID-19 Vaccines - E Hacking News

Singapore investigating claims Muslim app developer sold user data to US military - ZD Net

The malware that usually installs ransomware and you need to remove right away - ZD Net

Two Romanians arrested for running three malware services - ZD Net

VMWare releases fix for critical ESXi, Workstation vulnerability - Bleeping Computer

19-11-2020

A perspective on security threats and trends, from inception to impact - Help Net Security

Attacks on Pharma Rise Amid Targeting of COVID19 Vaccine Development - InfoSecurity

Brecha em teste de urna fez TSE adotar supercomputador que travou - UOL Tilt

Chinese Cloud Hopper Attackers Use Zerologon in New Campaign - InfoSecurity

Code42 Incydr Series: Protect IP with Code42 Incydr - ThreatPost

Data protection & digital identification – the current status in Europe - Jan Rochat

Egregor Ransomware Attack Hijacks Printers to Spit Out Ransom Notes - The State of Security

Evolution of Emotet: From Banking Trojan to Malware Distributor - The Hacker News

Factories have become a major target for malware attacks - E Hacking News

Fake QR Codes Can Expose Your Phone to Hackers. Here's How to Protect It - NBC Miami

Fearing drama, Mozilla opens public consultation before worldwide Firefox DoH rollout - ZD Net

Google’s free services are now phishing campaign’s best friends - Bleeping Computer

Google forces devs to reveal Chrome extensions’ data use, privacy practices - Help Net Security

Inside the Cit0Day Breach Collection - Troy Hunt

Micro macro Keyboard is Mega-Based - Hack a Day

Mount Locker ransomware now targets your TurboTax tax returns - Bleeping Computer

New Grelos skimmer variant reveals overlap in Magecart group activities, malware infrastructure - ZD Net

Proactively and Securely Reducing Your Organization’s Data Footprint - InfoSecurity

Researcher Drops Gender Discrimination Lawsuit Against Microsoft - InfoSecurity

Scammer sentenced for stealing $9M from adoption, automotive firms - Bleeping Computer

Survey says Australian companies adopting multi-cloud more likely to pay ransom - ZD Net

The effectiveness of vulnerability disclosure and exploit development - Help Net Security

WARNING: Unpatched Bug in GO SMS Pro App Exposes Millions of Media Messages - The Hacker News

White House issues guidance for federal agencies on AI applications - ZD Net

YesWeHack releases DOJO, a training platform geared toward learning bug exploitation the fun and visual way - Hackin9

18-11-2020

A third of charities have suffered a cyber-attack during the coronavirus pandemic - Charity Today

Americold Operations Downed by Cyber-Attack - InfoSecurity

build.securty Leverages OPA to Shift App Authorization Left - DevOps

Chaes malware strikes customers of Latin America’s largest e-commerce platform - ZD Net

Chinese APT10 hackers use Zerologon exploits against Japanese orgs - Bleeping Computer

Cisco Webex ‘Ghost’ Flaw Opens Meetings to Snooping - ThreatPost

DarkSide Ransomware Operators Plan to Open Distributed Storage System for Stolen Files - Hot For Security

Data protection & digital identification – the current status in Europe - aet Europe

Dubliner Jailed Over $2m Cryptocurrency Theft - InfoSecurity

Gaming Company Confirms Ragnar Locker Ransomware Attack - Data Breach Today

Hang up the Phone: MFA’s Insecure Reliance on SMS - Security Boulevard

How do I select a security assessment solution for my business? - Help Net Security

Increase in Ransomware Sophistication and Leverage of Legacy Malware Predicted for 2021 - InfoSecurity

Magnite supports Unified ID 2.0 to create a common transaction fabric for digital advertising - Help Net Security

Microsoft fixes Windows Kerberos authentication issues in OOB update - Bleeping Computer

Multi-cloud environments leaving businesses at risk - Help Net Security

Network traffic and consumption trends in 2020 - Help Net Security

Protest planned against leaking of image-based sexual abuse - Irish Examiner

Researchers Warn of Critical Flaw Affecting Industrial Automation Systems - The Hacker News

Sysdig launches zero trust network security for Kubernetes to cut miscrosegmentation time - Help Net Security

The worst passwords of 2020 show we are just as lazy about security as ever - ZD Net

Three-Quarters of IT/Security Execs Concerned Over Security of Remote Workforce - InfoSecurity

US Holiday Shoppers Fear Cyber-Scams - InfoSecurity

Why ransomware is still so successful: Over a quarter of victims pay the ransom - ZD Net

17-11-2020

6 steps to prioritize IoT gateway security - IoT Agenda TechTarget

29 Addresses to Analyze Malware Faster - LetsDefend Blog

Adult site users targeted with ZLoader malware via fake Java update - Bleeping Computer

Army Hires Company To Develop Cyber Defenses For Its Strykers After They Were Hacked - The Drive

Banks offered the Central Bank of Russia to create a centralized mechanism to combat fraudsters - E Hacking News

Ciberataques e a segurança do voto: quão protegida é a urna eletrônica? - Olhar Digital

Coil payments platform leaks user emails in 'Privacy Policy' update - Bleeping Computer

DHS cyber chief out after debunking Trump’s election claims - Politico

Group-IB’s CyberCrimeCon goes online for the first time - Help Net Security

Capcom Ransomware Breach May Have Hit 350,000 - InfoSecurity

Chinese APT Hackers Target Southeast Asian Government Institutions - The Hacker News

Chrome 87 released with performance boost and security fixes - Bleeping Computer

Cryptocurrency platform dangles ‘bug bounty’ carrot to hacker who stole $2 million - ZD Net

Defining Security Policies to Manage Remote Insider Threats - ThreatPost

FBI hires 140 robots to retrieve sensitive information - ZD Net

Four ways identity-centric security strategies can better secure home workers - SC Magazine

Hackers are actively probing millions of WordPress sites - Bleeping Computer

How to speed up malware analysis - Help Net Security

Interview with experts who lead the project ONTOCHAIN - E Hacking News

Leaked database exposed login data of 100k hacked Facebook accounts - HackRead

More than 200 systems infected by new Chinese APT 'FunnyDream' - ZD Net

More than 245,000 Windows systems still remain vulnerable to BlueKeep RDP bug - ZD Net

Over 80,000 ID Cards and Fingerprint Scans Exposed in Cloud Leak - InfoSecurity

PF inicia investigação sobre ataques virtuais ao TSE - Terra

Phishing attacks surge ahead of Black Friday and Cyber Monday - IT Pro

Phishing Campaigns Evolving Rapidly; Using Innovative Tactics to Avoid Detection - E Hacking News

Ransomware attack forces web hosting provider Managed.com to take servers offline - ZD Net

Ransomware Attacks Impact First Impressions Orthodontics, Kids First Dentistry & Orthodontics, and Hendrick Health Patients - HIPAA Journal

Some Apple Apps on macOS Big Sur Bypass Content Filters, VPNs - ThreatPost

ThreatList: Pharma Mobile Phishing Attacks Turn to Malware - ThreatPost

UK Firms Least Likely to Pay Ransom Globally - InfoSecurity

Verizon Releases First Cyber-Espionage Report - InfoSecurity

Vulnerability Prioritization Tops Security Pros' Challenges - Dark Reading

Why biometrics will not fix all your authentication woes - Help NetSecurity

Why Cybersecurity isn’t What You Think it is - InfoSecurity

16-11-2020

Kaspersky discovers Ghimob banking malware targets mobile users worldwide - Back End News

Capcom confirms data breach after gamers' data stolen in cyberattack - Bleeping Computer

Dozens of ransomware gangs partner with hackers to extort victims - Bleeping Computer

Cold storage giant Americold hit by cyberattack, services impacted - Bleeping Computer

2,2 milhões de brasileiros foram vítimas de golpes virtuais em outubro - Canal Tech

Cyber attacks up multi-fold in current environment: Cyber security coordinator - Daily Excelsior

IoT Supply Chains: Where Risks Abound - Data Breach Today

10,000 COVID-19 test results sent to 'unauthorized user' in August, DPH announces Sunday - Delaware Online

Apple assures Mac users its anti-malware feature isn't spying on them - Engadget

Royal Mail customers urged to watch out for delivery scam - expert issues warning - Express CO UK

State Actors Attack COVID-19 Research Efforts, Microsoft Says - Hot For Security

The Convergence of Ransomware and Public Relations - InfoSecurity

Scammers Expose Facebook Data Haul of 13 Million Records - InfoSecurity

Crypto Firm Offers $200,000 Bug Bounty to Hacker Who Stole $2m - InfoSecurity

Ransomware-as-a-service: The pandemic within a pandemic - Intel471

Use Threat Intelligence and Python Scripts In Malware Detection - Medium

Ticketmaster fined in the UK over 2018 customer data breach - Music Ally

Regulatory and Cybersecurity Responsibilities Intersect for Boards - NACD BoardTalk

Cult videogame company Capcom pays a big round $0.00 to ransomware crooks - Naked Security by Sophos

If Cybercrime Was a Country, Its Economy Would Be Third in World Behind USA, China - News18 Buzz

Ransomware Attacks Present a Growing Threat to FIs: FS-ISAC - Regulation Asia

Grupo Lazarus rastreado em ataques na Coreia do Sul - SEGInfo

Vazamentos listam Resident Evil Village no X1 e PS4 com dublagem PT-BR - TecMundo

Trojanized Security Software Hits South Korea Users in Supply-Chain Attack - The Hacker News

Researcher Discloses Critical RCE Flaws In Cisco Security Manager - The Hacker News

Privacy activist files complaints against Apple's tracking tool - The Indu

Attackers Target Porn Site Goers in ‘Malsmoke’ Zloader Attack - ThreatPost

Hacked Security Software Used in Novel South Korean Supply-Chain Attack - ThreatPost

India's biggest online grocer alerted to breach, sale of 20m users' data - The Straits Times

How Quickly Could Your Business Recovery From a Cyber Attack? - Uzado Blog

Lazarus malware strikes South Korean supply chains - ZD Net

The ransomware landscape is more crowded than you think - ZD Net

Windows 10 update problem: We're fixing Kerberos authentication bug, says Microsoft - ZD Net

Meet the hackers who earn millions for saving the web: How bug bounties are changing cybersecurity - ZD Net

New Zoom feature can alert room owners of possible Zoombombing disruptions - ZD Net

Jupyter trojan: Newly discovered malware stealthily steals usernames and passwords - ZD Net

15-11-2020

DPH announces data breach of 10,000 COVID-19 test results, sending letters to those impacted by incident - 47 abc

Arweave Suspects China in Recent Hacking Attempts - AltCoin Buzz

DarkSide ransomware's Iranian hosting raises U.S. sanction concerns - Bleeping Computer

Ticketmaster fined £1.25m over payment data breach - Click Lancashire

Coronavirus vaccine researchers are being targeted by cyberattacks - Digital Trends

Hackers attacked major Telegram channels via video on Yandex - E Hacking News

Google Chrome Update Gets Serious: Homeland Security (CISA) Confirms Attacks Underway - Forbes

Remote Education Rife With Threats To Student Privacy - Jamaica Gleaner

Apple Silicon M1 Emulating x86 is Still Faster Than Every Other Mac in Single Core Benchmark - MacRumors

Após negar ataque, TSE tem bancos de dados expostos por hackers em dia de eleição - Olhar Digital

Black Friday and Christmas shoppers warned of online scams - Richmond & Twickenhan Times

TSE não foi hackeado; dados “vazados” são de 2001 - TecMundo

Cencosud Retail Stores Hit by Egregor Ransomware Attack - TechDator

Malware attacks threaten companies as hybrid workspace model gains prominence - The New Indian Express

Phishing attack on GOP in Wisconsin leads to the theft of millions earmarked for Trump’s re-election campaign - The Washington Newsday

TSE apresenta instabilidade em sistema de apuração - Terra

Healthcare Cybersecurity market Trends & Forecast to 2026 - Industry analysis by geographical regions, type and application - Zenit News

14-11-2020

Hacker shares 3.2 million Pluto TV accounts for free on forum -Bleeping Computer

Data of 27 Million Texas Drivers Compromised in Breach - Data Breach Today

Op protected childhood: 113 online child predators arrested - HackRead

Scams Ramp Up Ahead of Black Friday Cybercriminal Craze - ThreatPost

Microsoft says hackers from Russia and North Korea attacked COVID-19 vaccine makers - The Verge

13-11-2020

New Jupyter malware steals browser data, opens backdoor - Bleeping Computer

New TroubleGrabber Discord malware steals passwords, system info - Bleeping Computer

New stealthy hacker-for-hire group mimics state-backed attackers - Bleeping Computer

Biotech research firm Miltenyi Biotec hit by ransomware, data leaked - Bleeping Computer

IRS announces move to protect businesses from identity theft - Bleeping Computer

Privacy should be at the core of CBDCs, says Boston Fed research director - CoinTelegraph

State-Backed Russian, North Korean Hackers Targeting Covid-19 Vaccine Research, Microsoft Alleges - Forbes

Após apagão de dados, secretário diz que há indícios de ataque aos sistemas do Ministério da Saúde - G1 Globo.com

Easy carrier board for the compute module 4 shows you ca dot it, too - Hack a Day

Hackers-for-hire APT group found targeting businesses globally - HackRead

Vertafore data ereach exposes license details of 27.7M Texas drivers - HackRead

Defend Yourself Against Dark Data - InfoSecurity

Credential Stuffers Scaled The North Face to Access Accounts - InfoSecurity

Hacker stole $2 million worth of Dai cryptocurrency from Akropolis - Security Affairs

Disconnect Your TCL Smart TV From the Internet—NOW - Security Boulevard

New Zealand Election Fraud - Schneier on Security

The North Face resets passwords after credential-stuffing attack - The State of Security

Report: CISA Chief Expects White House to Fire Him - ThreatPost

Ticketmaster Scores Hefty Fine Over 2018 Data Breach - ThreatPost

Botnet Attackers Turn to Vulnerable IoT Devices - ThreatPost

Australian government warns of possible ransomware attacks on health sector - ZD Net

Hacker steals $2 million from cryptocurrency service Akropolis - ZD Net

Brazilian IT market on the road to recovery in 2021 - ZD Net

12-11-2020

(IN)SECURE Magazine issue 67 released

Popular stock photo service hit by data breach, 8.3M records for sale - Bleeping Computer

Steelcase furniture giant down for 2 weeks after ransomware attack - Bleeping Computer

ModPipe malware decrypts Oracle point-of-sale database passwords - Bleeping Computer

New tool lets attackers easily create reply-chain phishing emails - Bleeping Computer

TrickBot: Humans Are Key To Winning The Botnet War - CyberCrime Magazine

STJ proíbe uso de notebooks pessoais para evitar novo ataque hacker - Convergência Digital

Hackers Use Bugs To Attack iOS and Android Devices; Google Doesn't Disclose Details - E Hacking News

Google makes app to lock devices if users default on payment - HackRead

Microsoft advises users to stop using SMS- and voice-based MFA - Help Net Security

Ransomware gang takes out Facebook ads to apply pressure on victim - Hot For Security

Update Your Chrome Browser Now! Google Says These High-Severity Bugs Have Exploits in the Wild - Hot For Security

Research Shows Why You Should Keep Your Netflix Password To Yourself - Information Security Buzz

ICO Demands Urgent Data Protection Changes from UK Parties - InfoSecurity

Close the Online Trust Gap With Identity Proofing - InfoSecurity

Phishing Attacks Now Targeting Enterprise Specifics - InfoSecurity

Most Americans Reuse Passwords for Work Devices - InfoSecurity

Cyber-Mercenaries Sell Espionage Campaigns - InfoSecurity

Ethical Hacker's Comic Dream Gets Backing - InfoSecurity

Hacker invade sistema da CGU e divulga passo a passo da ação no YouTube - Olhar Digital

Senior U.S. cybersecurity official tells associates he expects to be fired: sources - Reuters

Blackberry identifies mystery APT, calls upon researchers to start ‘picking up breadcrumbs’ - SC Magazine

Bugs in Critical Infrastructure Gear Allow Sophisticated Cyberattacks - ThreatPost

Cyberattackers Serve Up Custom Backdoor for Oracle Restaurant Software - ThreatPost

Uncovered: APT 'Hackers For Hire' Target Financial, Entertainment Firms - The Hacker News

Net Results: Dangerous call for ‘back doors’ to encryption - The Irish Times

Life after Maze: Is Egregor ransomware next? - TechTarget Search Security

How and when to change your Google password - TechRepublic

Microsoft urges users to stop using phone-based multi-factor authentication - ZD Net

New ModPipe malware targets hospitality, hotel point of sale systems - ZD Net

New ModPipe malware targets hospitality, hotel point of sale systems - ZD Net

Attackers target gaming as the latest ‘always on’ industry impacted by ransomware - SC Magazine

Online purchase scams spike since the start of COVID-19, reports BBB - AT&T Business

11-11-2020

BYOD and Enterprise Apps: Balancing Security and Employee Privacy - InfoSecurity

Ransomware gang hacks Facebook account to run extortion ads - Bleeping Computer

EdgeLive: DDoS Attacks Are Evolving into Extortion-Led RDoS Campaigns - InfoSecurity

Ubuntu fixes bugs that standard users could use to become root - ARS Technica

Cybersecurity Skills Shortage Falls for First Time - InfoSecurity

Over 2800 e-Shops Running Outdated Magento Software Hit by Credit Card Hackers - The Hacker News

Ragnar Locker Ransomware Gang Takes Out Facebook Ads in Key New Tactic - ThreatPost

Ragnar Locker ransomware gang using Facebook ads to extort victims - HackRead

Minecraft Apps on Google Play Fleece Players Out of Big Money - ThreatPost

Microsoft now lets you run multiple Android apps in Windows 10 - Bleeping Computer

Ransomware Attack on Medical Billing Company - InfoSecurity

Recent ransomware wave targeting Israel linked to Iranian threat actors - ZD Net

Malicious Minecraft apps on Play Store scamming millions of users - HackRead

Visualizing magnetic memory with core 64 - Hackaday

EC Finds Amazon Breached Antitrust Rules - InfoSecurity

NVIDIA fixes severe flaw in GeForce NOW cloud gaming service - Bleeping Computer

Chinese-linked Muhstik botnet targets Oracle WebLogic, Drupal - Bleeping Computer

COVID-19 Data-Sharing App Leaked Healthcare Worker Info - ThreatPost

High-Severity Cisco DoS Flaw Can Immobilize ASR Routers - ThreatPost

Vulnerabilities Exploited at Chinese Hacking Contest Patched in Firefox, Chrome - Security Week

Samsung fixes critical Android flaws with November 2020 updates - Bleeping Computer

Contas brasileiras espalham notícias falsas sobre eleição dos EUA - Olhar Digital

IoT Security Foundation launches vulnerability platform - IoT Agenda

Animal Jam kids' virtual world hit by data breach, impacts 46M accounts - Bleeping Computer

Vatican Brings in Bots to Protect World's Oldest Bible - InfoSecurity

Silver Peak SD-WAN Bugs Allow for Network Takeover - ThreatPost

Previsões de segurança cibernética para 2021: o que está na agenda do CISO? - Security Report

DNS cache poisoning, the Internet attack from 2008, is back from the dead - ARS Technica

Palo Alto Networks acquires attack surface manager Expanse in $800m deal - ZD Net

DDoS attacks are cheaper and easier to carry out than ever before - ZD Net

10-11-2020

5.8 million RedDoorz user records for sale on hacking forum - Bleeping Computer

Why I’m Not Sold on Autonomous Security - InfoSecurity

Proper Cassettes for your FPGA retrocomputer - Hackaday

Cadbury Social Media Scammers Take Chocoholics for a Ride - InfoSecurity

Stressed Employees Behind 4 In 10 Data Breaches - Information Security Buzz

New 'Ghimob' malware can spy on 153 Android mobile applications - ZD Net

Zoom Settles with FTC After Charges it Misled Customers - InfoSecurity

Former Microsoft engineer sentenced to nine years in prison for stealing $10 million - ZD Net

Wawa Says Security Standards Bar Data Breach Claims - National CyberSecurity News

Windows 10 password problems: Microsoft says it's fixing bad 'password amnesia' bug - ZD Net

Phishing, deepfakes, and ransomware: How coronavirus-related cyberthreats will persist in 2021 - Tech Republic

Apple to Deliver ‘Privacy Labels’ for Apps, Revealing Data-Sharing Details - ThreatPost

New Platypus attack can steal data from Intel CPUs - ZD Net

Hacker Sells Access to Pakistani Airlines' Network - InfoSecurity

Ghimob Android Banking Trojan Targets 153 Mobile Apps - ThreatPost

Golpe com apps financeiros mira no Brasil e rouba dados bancários - Tech Tudo G1

Microsoft Teams Users Under Attack in ‘FakeUpdates’ Malware Campaign - ThreatPost

Malicious Use of SSL Increases as Attackers Deploy Hidden Attacks - InfoSecurity

US Retailers More Vulnerable to Web App Attacks Than EU Counterparts - InfoSecurity

New worming botnet Gitpaste-12 infecting IoT devices, Linux servers - HackRead

Data on millions of hotel guests exposed in cloud storage leak - We Live Security

Colossal Intel Update Anchored by Critical Privilege-Escalation Bugs - ThreatPost

Chrome to block tab-nabbing attacks - ZD Net

Chaining password reset link poisoning, IDOR and information leakage to achieve account takeover at https://api.redacted.com - Medium

Android TVs from top manufacturer plagued with ‘extraordinary’ flaws - HackRead

Mysterious Bugs Were Used to Hack iPhones and Android Phones and No One Will Talk About It - Vice.com

Online fraudster sentenced to prison for $700K “spoof” email scheme and more - United States Department of Justice

09-11-2020

The Secure SD-WANderful Approach to Securing Your Workers at Home and in the Office - InfoSecurity

‘Be prepared and be brave’: The Salvos reveal how they prepare for cyber attack - PROBono Australia

Stolen belongings of codebreaker Alan Turing to return to UK - ZD Net

Compal, the second-largest laptop manufacturer in the world, hit by ransomware - ZD Net

How Attackers Brush Up Their Malicious Scripts - InfoSec Handlers Diary Blog

Getting Over 4gbps out of a compute module 4 - Hackaday

Cyberattack on UVM Health Network Impedes Chemotherapy Appointments - ThreatPost

Millions of Hotel Guests Worldwide Caught Up in Mass Data Leak - ThreatPost

CTIR Gov publica campanha de alerta quanto à ataques de Ransomware - SegInfo

Laptop maker Compal hit by ransomware, $17 million demanded - Bleeping Computer

End-to-end encrypted communication mitigates enterprise security risk and ensures compliance - Help NetSecurity

Round 2 in California’s fight against data privacy confusion has not gone well - Biometric Update

Open University Targeted With Over a Million Malicious Email Attacks So Far This Year - InfoSecurity

Microsoft Exchange Attack Exposes New xHunt Backdoors - ThreatPost

BigBasket data breach – 20 million customer data sold on dark web - HackRead

Preventing and Mitigating DDoS Attacks: It's Elementary - Dark Reading

Ransomware hits e-commerce platform X-Cart - ZD Net

Older Android phones will start failing on some secure websites in 2021 - ZD Net

This new malware wants to add your Linux servers and IoT devices to its botnet - ZD Net

Apple recua na ameaça de remoção da App Store para aplicativos Unix shell iOS - National CyberSecurity News

Hacker Spotlight: Interview with 'Cyberboy', Bug Bounty Hunter who Won $3000 - E Hacking News

Trump Site Alleging AZ Election Fraud Exposes Voter Data - ThreatPost

Fake Microsoft Teams updates lead to Cobalt Strike deployment - Bleeping Computer

Npm package caught stealing sensitive Discord and browser files - ZD Net

Google Chrome to block JavaScript redirects on web page URL clicks - Bleeping Computer

Bug hunter wins 'Researcher of the Month' award for DOD account takeover bug - ZD Net

xHunt hackers hit Microsoft Exchange with two news backdoors - Security Affairs

Millions of hotel guests worldwide have their private details exposed - Graham Cluley Website

Expert On Italian Beverage Vendor Campari Knocked Offline After Ransomware Attack - Information Security Buzz

Dados cadastrais de clientes da Enel vazam indevidamente em Osasco - G1 Globo.com

WordPress plugin bugs can let attackers hijack up to 100K sites - Bleeping Computer

Watch Out! New Android Banking Trojan Steals From 112 Financial Apps - The Hacker News

Cyber Attacks Are Growing More Sophisticated During the COVID-19 Pandemic; Here’s How to Defend Against Them - CPO Magazine

Windows 10 e iOS 14 são hackeados em 5 minutos no TiancuCup - TecMundo

Receita Federal já apreendeu e destruiu 160 mil TV Box piratas - TecMundo

European Parliament paves path for tighter spyware export controls - CyberScoop

Emotet and TrickBot Top the Malware Charts Yet Again - InfoSecurity

08-11-2020

Windows 10, iOS, Chrome, Firefox and Others Hacked at Tianfu Cup Competition - The Hacker News

HMRC smishing tax scam targets UK banking customers - Bleeping Computer

Easily apply Smali patches to Android Framework without a PC using this script - XDA Developers

Identifying Vulnerabilities in SSL/TLS and Attacking them - InfoSec Write-Ups

07-11-2020

FBI: Hackers stole source code from US government agencies and private companies - ZD Net

This script lets you download ISOs for any Windows 10 version - Bleeping Computer

How Ryuk Ransomware operators made $34 million from one victim - Bleeping Computer

Ataque hacker ao STJ: seis coisas que você precisa saber sobre o caso - TechTudo G1

06-11-2020

Ransomware Alert: Pay2Key - CheckPoint Research

Câmara recebe proposta para criar lei sobre dados de segurança pública - UOL Tilt

Has the Rise of Identity Seen the Death of Anonymity? - InfoSecurity

Redefine the Risk Dynamic Within Your Business to Enhance Innovation And Development - InfoSecurity

US: We've just seized $1bn in bitcoin stolen from Silk Road by 'Individual X' hacker - ZD Net

Ransomware Gangs Not Honoring Ransom Payments for Stolen Data - The State Of Security

This hacking group is using previously unknown tools to target defence contractors - ZD Net

Ransomware gangs that steal your data don't always delete it - ZD Net

Live News Streaming Figures for Election2020 Highlight Misinformation Threat - InfoSecurity

Israeli companies targeted with new Pay2Key ransomware - ZD Net

Linux version of RansomEXX ransomware discovered - ZD Net

Campari Site Suffers Ransomware Hangover - ThreatPost

Hotel reservation platform leaked user data from top online booking sites - HackRead

05-11-2020

Company that runs US illegal immigration detention centers discloses ransomware attack - ZD Net

Capcom quietly discloses cyberattack impacting email, file servers - ZD Net

Gaming Giant Capcom Suffers Security Breach - InfoSecurity

Two-Thirds of Financial Services Firms Suffered Cyber-Attack in the Past Year - InfoSecurity

Malspam Campaign Milks Election Uncertainty - ThreatPost

Premium-Rate Phone Fraudsters Hack VoIP Servers of 1200 Companies - The Hacker News

Hackers are exploiting unpatched VoIP flaws to compromise business accounts - ZD Net

Ministério da Saúde investiga ataque hacker; rede foi desativada - UOL

Hacker criptografou todos os processos e emails do STJ - O Bastidor

CNJ, Governo de Brasília e SUS sofrem ataque semelhante ao do STJ - O Bastidor

Além do STJ, outros órgãos sofrem tentativas de ataques de hackers - Valor Econômico

STJ: mais de 1.200 servidores congelados, backups destruídos - CISO Advisor

GitHub denies getting hacked - ZD Net

Google Chrome Receives Second Patch for Serious Zero-Day Bug in Two Weeks - E Hacking News

Update Your iOS Devices Now — 3 Actively Exploited 0-Days Discovered - The Hacker News

North Korean Hackers Used 'Torisma' Spyware in Job Offers-based Attacks - The Hacker News

Ransomware: hackers cobram resgate da base de dados do STJ - TecMundo

Apple fixes three iOS zero-days exploited in the wild - ZD Net

CyberArk Discloses Kubernetes Security Issues - Container Journal

ShinyHunters hacker leaks 5.22GB worth of Mashable.com database - HackRead

04-11-2020

23,600 hacked databases have leaked from a defunct 'data breach index' site - ZD Net

How to Organize Employees to Cooperate in Threat Mitigation - InfoSecurity

Mattel Reveals July Ransomware Attack Impacting Business - InfoSecurity

Cisco discloses AnyConnect VPN zero-day, exploit code available - Bleeping Computer

Warning after 75,000 'deleted' files found on used USB drives - BBC News

How To Ensure Your NIST Cybersecurity Framework Implementation Isn’t Too Little, Too Late - Forbes

Microsoft outage breaks sites, Windows Store, Xbox, and other services - Bleeping Computer

Sneaky Office 365 phishing inverts images to evade detection - Bleeping Computer

Building Cyber-Resilience Across the Wider Economy Post-COVID - InfoSecurity